password_security
Enforces configurable password policies in Odoo so user accounts remain compliant with the organization’s security rules.
Key Features
- res.config.settings: Administrators define password policy parameters such as expiration days, minimum length, password history depth, and required character classes.
- res.users: Stores previous password hashes and rejects any new password that matches one of the recently used values.
- res.users: Tracks each user’s last password change and blocks access once the configured lifetime elapses until the password is updated.
- auth: Validates new passwords for uppercase, lowercase, digit, and special-character requirements before accepting them.
- security: Lets administrators flag accounts for an immediate password reset even if the regular expiration period has not yet been reached.